Status: IN
API Gateway client-side SSL certificates verify that HTTP requests to the backend originate from API Gateway — they do not verify client-to-API-Gateway connections.
Source: entries/2026/03/11/apigateway-latest-developerguide-apigateway-control-access-to-apihtml.md